$ rpki-client -vvf rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.mft File: y7aOmQU8HeJHirvi3_KrzsDRsUg.mft (raw, json) Hash identifier: 5C6/UoAATcVSlY9TobpO1z4B274MtKMMLt/7/dO4KH4= Subject key identifier: B7:22:5F:1D:9C:89:B8:A2:0D:3C:F6:5A:90:FB:48:62:1E:16:54:B1 Authority key identifier: CB:B6:8E:99:05:3C:1D:E2:47:8A:BB:E2:DF:F2:AB:CE:C0:D1:B1:48 Certificate issuer: /CN=A9149905/serialNumber=CBB68E99053C1DE2478ABBE2DFF2ABCEC0D1B148 Certificate serial: 352F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7aOmQU8HeJHirvi3_KrzsDRsUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.mft Manifest number: 3526 Signing time: Sun 22 Mar 2026 14:54:19 +0000 Manifest this update: Sun 22 Mar 2026 14:54:18 +0000 Manifest next update: Sun 29 Mar 2026 14:54:18 +0000 Files and hashes: 1: y7aOmQU8HeJHirvi3_KrzsDRsUg.crl (hash: VpXrg1Kcic36LD9y9Sa0ZJqSEfOeuVMW1CNaVh97Tsg=) 2: A6D6CA7E022C11EBAC47A831C4F9AE02.roa (hash: k15XvHBFTQxYQednyHDCk4s/WtIgkfY4gwfxlATMUsU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.crl rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7aOmQU8HeJHirvi3_KrzsDRsUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 14:54:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13615 (0x352f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149905, serialNumber=CBB68E99053C1DE2478ABBE2DFF2ABCEC0D1B148 Validity Not Before: Mar 22 14:54:18 2026 GMT Not After : Mar 29 14:54:18 2026 GMT Subject: CN=69c0029b-8c3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d1:81:1a:28:e7:98:1b:0f:3b:08:34:f2:f6: 97:a1:68:c4:81:88:4c:ee:94:5e:d3:d1:bf:a1:85: 83:cb:46:6c:db:46:a7:9e:3e:43:23:9d:9d:58:6e: 23:74:a7:a9:5c:6c:fd:75:5c:49:34:e2:95:3c:19: 19:08:16:7c:f0:f0:ac:fe:78:17:88:c8:43:23:38: 7d:87:e0:25:80:1b:7b:fa:af:fa:87:d7:65:5b:dc: 53:29:82:15:4d:f6:7a:6e:1a:93:10:42:78:47:cd: 1d:9c:99:3f:f4:fd:6e:2e:0d:6d:6b:5e:16:10:e5: 04:02:34:c0:6e:8d:2c:d4:8c:7e:94:b2:97:40:c5: e6:9d:4c:ae:7f:a0:66:43:44:4f:05:07:24:bc:55: 4c:4a:7c:d1:91:37:92:25:ed:43:fd:30:a6:29:4d: e6:59:01:73:d0:c2:a6:67:b6:ae:9d:bf:a2:87:91: bb:d2:bd:4e:7b:67:b6:37:90:2d:62:c0:4a:74:80: 14:98:23:95:6c:5e:6a:74:44:55:f1:88:da:7c:a6: a2:12:7a:11:09:d2:f4:17:b5:ae:98:e2:79:c6:e2: c8:f8:97:5a:ff:a9:3a:1c:20:7f:8f:12:82:5d:21: e6:49:57:65:d0:2c:72:55:a0:2f:51:cc:da:5e:5d: 0e:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:22:5F:1D:9C:89:B8:A2:0D:3C:F6:5A:90:FB:48:62:1E:16:54:B1 X509v3 Authority Key Identifier: keyid:CB:B6:8E:99:05:3C:1D:E2:47:8A:BB:E2:DF:F2:AB:CE:C0:D1:B1:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7aOmQU8HeJHirvi3_KrzsDRsUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:ba:75:e8:71:73:09:b7:9c:2b:60:7f:0c:03:4d:cd:3f:2e: 92:2b:74:2f:f4:85:f4:e0:c0:6c:e7:00:22:8a:9a:47:4d:63: 34:bf:ba:18:b6:43:2e:71:35:78:3e:4f:ca:6a:e6:73:a8:fa: fb:11:28:66:ea:15:d8:d3:83:07:9c:30:e2:2f:06:e9:89:2b: a5:36:d4:88:82:6c:57:92:d1:e6:4f:34:24:c2:32:61:02:85: e6:30:35:a4:9e:cc:74:03:87:88:3d:dc:a6:a2:f6:44:92:74: be:8c:ce:71:0e:3d:97:71:8f:dc:4a:f6:40:95:11:8f:96:dc: fe:d0:a0:05:e3:48:db:f1:81:f6:1c:3d:5c:a8:84:99:cd:d3: eb:f9:5b:07:47:81:91:2d:8f:3f:aa:f4:8f:23:6c:f8:03:a0: 84:6a:5f:b1:2e:5b:e4:45:e1:15:9d:c3:63:cb:42:99:1c:5c: a1:08:ff:00:5e:ab:46:bd:8d:61:bb:ff:45:fa:ea:d4:05:fc: 5e:c7:c4:d7:37:3e:3d:31:9f:10:0a:32:37:a5:01:3c:75:21: 27:e2:ea:d6:e7:d1:30:8f:81:32:24:57:91:af:51:a8:ff:d7: 77:43:98:e4:fb:4b:36:86:6a:aa:26:df:41:94:f9:48:67:16: 23:04:c1:cb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDk5MDUxMTAvBgNVBAUTKENCQjY4RTk5MDUzQzFERTI0NzhBQkJFMkRGRjJBQkNF QzBEMUIxNDgwHhcNMjYwMzIyMTQ1NDE4WhcNMjYwMzI5MTQ1NDE4WjAYMRYwFAYD VQQDEw02OWMwMDI5Yi04YzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArdGBGijnmBsPOwg08vaXoWjEgYhM7pRe09G/oYWDy0Zs20annj5DI52dWG4j dKepXGz9dVxJNOKVPBkZCBZ88PCs/ngXiMhDIzh9h+AlgBt7+q/6h9dlW9xTKYIV TfZ6bhqTEEJ4R80dnJk/9P1uLg1ta14WEOUEAjTAbo0s1Ix+lLKXQMXmnUyuf6Bm Q0RPBQckvFVMSnzRkTeSJe1D/TCmKU3mWQFz0MKmZ7aunb+ih5G70r1Oe2e2N5At YsBKdIAUmCOVbF5qdERV8YjafKaiEnoRCdL0F7WumOJ5xuLI+Jda/6k6HCB/jxKC XSHmSVdl0CxyVaAvUczaXl0O5QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLciXx2c ibiiDTz2WpD7SGIeFlSxMB8GA1UdIwQYMBaAFMu2jpkFPB3iR4q74t/yq87A0bFI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTkwNS8zOTREMDY0QTFE OUIxMUUyQkUxMkVGODgwOEIwMkNEMi95N2FPbVFVOEhlSkhpcnZpM19LcnpzRFJz VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k3YU9tUVU4SGVKSGlydmkzX0tyenNEUnNVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OTkwNS8zOTREMDY0QTFEOUIxMUUyQkUxMkVGODgwOEIwMkNEMi95N2FPbVFVOEhl SkhpcnZpM19LcnpzRFJzVWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXbp16HFzCbecK2B/DANNzT8ukit0L/SF9ODAbOcAIoqaR01jNL+6GLZDLnE1 eD5Pymrmc6j6+xEoZuoV2NODB5ww4i8G6YkrpTbUiIJsV5LR5k80JMIyYQKF5jA1 pJ7MdAOHiD3cpqL2RJJ0vozOcQ49l3GP3Er2QJURj5bc/tCgBeNI2/GB9hw9XKiE mc3T6/lbB0eBkS2PP6r0jyNs+AOghGpfsS5b5EXhFZ3DY8tCmRxcoQj/AF6rRr2N Ybv/Rfrq1AX8XsfE1zc+PTGfEAoyN6UBPHUhJ+Lq1ufRMI+BMiRXka9RqP/Xd0OY 5PtLNoZqqibfQZT5SGcWIwTByw== -----END CERTIFICATE-----Generated at Mon Mar 23 00:17:23 2026 by rpki-client